Analysis

  • max time kernel
    120s
  • max time network
    128s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    13-06-2024 08:04

General

  • Target

    a48ba87838cfcc0810c41b78279fd166_JaffaCakes118.html

  • Size

    117KB

  • MD5

    a48ba87838cfcc0810c41b78279fd166

  • SHA1

    9f63465fbee036e3ab495d5ca5c4d040ed407c18

  • SHA256

    c8645ab801df8cfb002e1b879a590392657a1f8c68ba9354ba40cb4feac326df

  • SHA512

    aae5376b5479066e707357e0f3605ce50b3f4498a0d211bccb8665bcfd5e51efb3452ef0c437ba4ff348e063363d952c6a7d8f9a1771df3add4c53505823598b

  • SSDEEP

    1536:SciyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrusBTOy9dGCsn:SDyfkMY+BES09JXAnyrZalI+YQ

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\a48ba87838cfcc0810c41b78279fd166_JaffaCakes118.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2016
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2016 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2928

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a2a31091c36253b4385cc4ec41989f5b

    SHA1

    f130e8d0daf615e80c6c922d60a77b3867bc7593

    SHA256

    f1a7efc99aaaa219d55b010c1519e62105b433e50c260d8714cbcb4d6d1ba084

    SHA512

    3543107b31175e8e5e4e9a561f1a3a3ccbde5cf4e623c7b57c5f53e9f39da3746668bbc816f5fc600304672439f4a935d6e03fc61a816de843c7cf88c859e285

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    228c0dcd6dcdd265157852ad958d6975

    SHA1

    7a4aec6a0ba4224ca3b2de1a219ad5580a1252a1

    SHA256

    25290626eb5ebb38788873d179379f6d6b4f8bdf873fdbd9892901e5708c3826

    SHA512

    da416cf98a1f5583a9220134cff2cb88efb399b34f73e0c575020ddc307a17484a48ffc396e4e3bde92080f870d8dc8a835b9ee247f388bd134567a22ad96ac6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    1833e062dffa0f287638628a0e5f732c

    SHA1

    5e1a6f8f0959c6f1ff177735ef0490db1f539c03

    SHA256

    f2c752a2d80ed995a1f9b8407069102e55dc84c4d714d3d33f25cee4566d8643

    SHA512

    ab2bbc0d59e17cc2112df43343b6cd4f423559fbe94dcebfc77f3e68ca85b14cbc62aeb5b6405c871930e7ee01a38e9daf17658f6765ef0f557ba9a9988c7b2f

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    c7d45d1483df9434842f57012d06a8e2

    SHA1

    dc49c4a056e692bca20a92a1125adc51ae744c68

    SHA256

    560bf813822a7278cf10cb197a0363c16fe8e8b6f523ea81ca2e18a5c761da00

    SHA512

    04889d9f562c7dcde88e8a5869e58fdfaf43bd13dffdc078f3e6e25c296a26d9bcee6895f8152d16c831baad7ca51338bb9d7e1d060ca8817e487f7be48dec16

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    f7c83d13996bc8ccdad21c23c0aab81a

    SHA1

    16f345ec5860d9f6644182162e88d9544ddb0fa8

    SHA256

    4ded2a403fffe6ddfd0f29de7428d6484365eda3dcf20f780fa60a6eeccdf83d

    SHA512

    93c5219d9622faa9acaf87fccf8c9bbd59cb2e632bc45fafc5514647cf5d8c7d0bbda4e2474328662d5ebc37b1da67ae021640d26b6ea7ff90e0c365bc4f05f1

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    9adf93a31d25c174d751fd0ccc585914

    SHA1

    5d9f79ec576635f064ab35caa87bfa893f4cd63e

    SHA256

    507e85a925ce3c422a1d3917fe7756848007ce3cd38450ae34d59f3015cb23c9

    SHA512

    823e9b185a76efaf77e1496aeb8690c3d84c3ea3ae21e030f09283858587fea36b83e8d05da36585597d8988ea38c4bb842f301e8165b0e18131b3544bb0a595

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    4b3ef5b7fe30902ea3643f33f914bfb1

    SHA1

    cbaaf370fe8c0152ca897b4f3dd3634d6769b637

    SHA256

    97f5345010c15816c0313c4b9be9d8478ffd75243ba91b0c57f4fd17b1c61792

    SHA512

    406dc6f856cc68f1db2481327d721c8e95ceaa1fccd53a6f3be191073fea92c53dec7c7b14574fc0af608c0b27fdebe7ad7eff35e1f33a245242afba7e0730de

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    22d283768b79aef516cfd4309614f9e1

    SHA1

    46de6b02d7e1d40df7e8a135a90dccad28b296f2

    SHA256

    1e805a164a81e073ae38adf8000b00b1646be2b9190e2cd93caeb63194923932

    SHA512

    299b245c312652333e59a1e7206564fcd89f7cda467df77883968ad87eee2cf73caea275cc4806f8dce3882f8686da6843ff3cbc1e0164e954a15e9e8b3e64c0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    d60d40469bf629402b5be798fe0b3cf7

    SHA1

    9a75e3c2175e3247d53eee5fca545ab0bc228644

    SHA256

    13b3274cd0b39f4660a6fe4ec4fb0711e04f4477f96ded03a20a61b9a2c65bbf

    SHA512

    5ed776db908c478064b21f2c618c3b8fccf52d1d6a812be60c02b9ac746f7c5ada3cc1f8b4026d657b785f8d9fba5aa21c3838efb2961d2860b8ac941d6efd9e

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    ad0756b968d9c6f3f11a04b41817ae20

    SHA1

    6d91b49f67d7abe56383a70dda1020cf529b7ad1

    SHA256

    64e5960f86de7898d00beb6a168a7f42aa4678b5ae766e5924be14584dbbf501

    SHA512

    fedfe26890cdfc4315c5c702558c4806294cca771b2aa6cfde648f6197bb29eb80ced5fd6ecc2f1d2cc556a0e02f263cd738a66b84a60913ef3e90e2a2a25485

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    b4a392061bc6f0027cf2a4249677c412

    SHA1

    b3889d9ff5d7351688d516a9b59333b7c9d4ad59

    SHA256

    fcaf53cbd5c9a7d6af3a66c2728469a229a40e9bd640b1f44dcb69c4d53298c5

    SHA512

    98cd131f074df2c092036b1be9436c59be22030924225bd54254aa97920c214b47aa12d9e34a868cd5db29b068d096714e36d9d457b47e53cd467a2fc37a2b88

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bfe705b3ab4fb8b133a6ad59c6e04375

    SHA1

    db4ce4d8814e925f9acc4b676f822437993a2f02

    SHA256

    f6011294ded6231dacf6ae0dff30d5f69d5f0602e3062d9999d4350d33439413

    SHA512

    7bc07edb3f40260db7b789a47967cf9250ac7ad1cdabaabbee728e3d9b6370c755bce00393a6b7d28f2571a1acfedb524019f253aa00ef0b67c1b1d876039a81

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    8e0dd99dc91dfdf4563663bd547f2520

    SHA1

    097863acc8fa91206d7ff7e4e93aa54180841c67

    SHA256

    0dc4dcd676610c2a122cbc7a0e63dabe8ffc5b5ad0ce0ce7362aaba12af769a0

    SHA512

    1b3d7d905c85e51fd039bbbbe03f0e4f8d7efa2e089d7ecd85b4b2e6a20f5f8b38b0c588c073e56536cf437faeaf248084a6b11e0809cd8c20e2ff72bb6b24a6

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    a6fd57ceb0b767adb9a874b4dd3c65d3

    SHA1

    cd1a22082f11681cb3699020858497fccb97dd49

    SHA256

    ff27636427eceebdcac6d07bcf8e534e99005cdfb2c5801d4ce53ba65e085d75

    SHA512

    a25b3dcfb5b4d7fbfdc615a219a6d1298c5988a04b485a79c066bf7a3fe0af5128a084b038224dddd9db598299f008a14a7f9c3ef15f05c9d475106b75dc3840

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    80b24bae3a69374e3a29dad50b145b78

    SHA1

    d86f7d7b056fb52d06c93c3c3dbd9e2d7a6302bb

    SHA256

    f4e468426067af4cfb788f569194dcf0ff6436bfce710556afff5d2a7fece673

    SHA512

    53563d55aa8fe37b3e446e041e016ee4d40491d45b8388b46fbaefc4163aaa02a217cd43b92a053f32eac8d75a1b9558c58bf4aff72773ef12ec5da315b9cec0

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    5d4b5d6b87b2c54bb1f9532e4bb7f00b

    SHA1

    96b2d7aaf01406cea46b2650a5ed065dababccb5

    SHA256

    bbed002b93f209aa7b3c1fcb8e00928bcb161aa2b47130fb190a0c51de5c57c0

    SHA512

    5fe31a40c24c116e54c7265bcb6211f59a953b04e6208d24aabd698f521fca6d4e5202bda09f7b311001f1e7af8d9d4d529b46e42ecdebf8aae7a09bd1e76791

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    6c6fd66869ceebe97a31598529db4648

    SHA1

    7873b84c9c56a9dbe4da2c83579418b851674f2c

    SHA256

    009c2106fe7b987726da8d34efe50219abb74fddde1b35df9b562279a1df575f

    SHA512

    f3763854184c12eea65b8c2fb14ba1f53332ee48eb0ea02b428ee7004bead4fb6b1175bf663357da371d74423e404c3e5dad1835c52ec45511aab14db8542a71

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    0e80c7c0442f44f13e74994cd128c3a1

    SHA1

    692b88a4ec1d0c2df12e4914126a9b48c505821e

    SHA256

    efc84360b98074deffa8006fc0184130ad2416fa9cec3e1e4a538a0d28c62fc0

    SHA512

    c886a249d87718b816c51dab0508926bb473c82e957f6030dae938d9fbc017347847097cacabc3ccfc583445d63fac0d828a8c6aaf8819506560a3201a228ebd

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015

    Filesize

    342B

    MD5

    bfb55b39dcbd97c11e3a11e78a9b28d8

    SHA1

    76802c9cbdb9c883fcae269291707022606ed70b

    SHA256

    f865d0da854a3e3ad65c39242d7dc151709efd42751a5b07cf29c24e4d72a748

    SHA512

    407ec4c29c17b40d925575d5909257293fb7e8bc8a58b2663d6b409ae609fa2bfc8e80ee274ec1b6b05d9fdd967f8dd4a5658d9d6978b57cb22419d0f670f19c

  • C:\Users\Admin\AppData\Local\Temp\Cab2EC0.tmp

    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

  • C:\Users\Admin\AppData\Local\Temp\Tar2F70.tmp

    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b